AWS apigateway documentation change
Summary
Modified IAM role trust relationship by setting Service principal to empty string
Security assessment
Empty Service principal could allow unintended service access, but no explicit evidence this addresses a reported security issue. Appears to be a documentation error
Diff
diff --git a/apigateway/latest/developerguide/set-up-stages.md b/apigateway/latest/developerguide/set-up-stages.md index 0714b5509..4bcef1345 100644 --- a//apigateway/latest/developerguide/set-up-stages.md +++ b//apigateway/latest/developerguide/set-up-stages.md @@ -104,0 +105,6 @@ The IAM role must also contain the following trust relationship statement: +JSON + + +**** + + @@ -112 +118 @@ The IAM role must also contain the following trust relationship statement: - "Service": "apigateway.amazonaws.com" + "Service": ""